CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
Microsoft Patch Tuesday — June 2026
Microsoft’s June 2026 Patch Tuesday is the largest release since the Patch Tuesday program began, surpassing the previous record of 167 CVEs set in October 2025. This month’s release addresses 206 vul ...
-
The Hacker News
Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows
The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released a proof-of-concept (PoC) exploit for yet another Microsoft Defender zero-day named RoguePlanet. ...
-
The Hacker News
Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS
Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of Protocol Buffers (Protobuf), that, if successfully exploited, could re ...
-
Trend Micro
GenAI Is Both Hunter and Hunted at Pwn2Own Berlin 2026
Key takeaways AI is now both the hunter and the hunted. In Pwn2Own Berlin 2026, contestants used LLMs and agentic coding tools to find vulnerabilities, while AI tools including Claude Code, Codex, and ...
-
Ars Technica
Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed
Tuesday’s patch bundle also fixed MiniPlasma, a separate vulnerability disclosed by Nightmare Eclipse. Microsoft said in an email that the vulnerability is tracked as CVE-2020-17103, a vulnerability M ...
-
Zero Day Initiative
The June 2026 Security Update Review
CVE Title Severity CVSS Public Exploited XI Type CVE-2026-41091 Microsoft Defender Elevation of Privilege Vulnerability Important 7.8 Yes Yes 0 EoP CVE-2026-49160 HTTP.sys Denial of Service Vulnerabil ...
-
The Hacker News
Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code
Veeam has released security patches to address a critical flaw in its Backup & Replication software that could result in remote code execution. Tracked as CVE-2026-44963, the vulnerability carries a C ...
-
Ars Technica
High-severity vulnerability in Linux caused by a single errant character
When a verdict map is deleted from memory, catchall elements are deactivated and a chain’s reference counter is decremented. When errors occur the deletion can be reversed and the counter incremented. ...
-
security.nl
Veeam-lek maakt remote code execution op back-upserver mogelijk
Een kritieke kwetsbaarheid in de software van Veeam maakt remote code execution op back-upservers mogelijk. Het bedrijf heeft updates uitgebracht om het probleem te verhelpen. Het beveiligingslek bevi ...
-
security.nl
Ivanti Sentry-servers via kritieke kwetsbaarheden op afstand over te nemen
Twee kritieke kwetsbaarheden in Ivanti Sentry maken het mogelijk voor ongeauthenticeerde aanvallers om kwetsbare servers volledig op afstand over te nemen. Ivanti heeft vandaag beveiligingsupdates uit ...